$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/1711236a-8155-4c07-b817-a1102ef842d6.roa File: 1711236a-8155-4c07-b817-a1102ef842d6.roa (raw, json) Hash identifier: 8dozj8+hjRqWrMJg6fCiSPuASxRaR3B18ste7euXprk= Subject key identifier: 1C:2F:FB:64:AC:50:1D:C0:AF:F2:30:8D:10:B8:01:A5:C7:9B:64:92 Certificate issuer: /CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Certificate serial: 33C1CBBD8A728F79079B54B51D2745575BE03239 Authority key identifier: 15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/1711236a-8155-4c07-b817-a1102ef842d6.roa Signing time: Mon 22 Apr 2024 00:00:00 +0000 ROA not before: Mon 22 Apr 2024 00:00:00 +0000 ROA not after: Mon 27 May 2024 23:59:59 +0000 asID: 35916 IP address blocks: 43.226.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/aaa76394-48fc-4ff3-b6aa-0693c55d758f.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:c1:cb:bd:8a:72:8f:79:07:9b:54:b5:1d:27:45:57:5b:e0:32:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107 Validity Not Before: Apr 22 00:00:00 2024 GMT Not After : May 27 23:59:59 2024 GMT Subject: serialNumber=45e90ee6eb2da908e2c0aee2ae2b1e8a42eb86ceec48c7429088217461e9a08c, CN=35095e3e-84cb-4ad0-bda1-6c6f8da69f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:75:42:3c:7c:b1:23:42:1c:0a:f9:55:07:05: ad:cf:50:c5:5b:d5:6b:c1:1d:b2:7d:4f:95:ae:68: e9:4b:a8:c7:24:1a:3f:37:42:02:c4:eb:90:78:4f: 50:14:23:e6:48:d2:21:d2:76:bc:6c:c3:48:d3:db: 3c:ae:16:e7:e9:2a:fe:09:bb:2e:93:cd:a9:4e:86: d6:4e:70:95:4b:a8:7a:6d:3d:b3:30:96:f6:02:7b: 8c:53:3e:8b:5a:9a:3a:22:b8:96:5a:0b:0b:ef:88: 60:c6:d8:5d:65:c6:ec:78:01:3f:cc:54:de:14:6c: 06:b1:fa:d9:54:6d:de:97:67:70:f6:b2:3c:60:88: 17:9e:b7:4a:51:f1:4b:71:59:71:75:6a:4a:af:96: 7c:6d:a8:d0:cd:fd:2b:f0:f0:99:6e:9b:d7:c5:b1: f7:53:bd:45:43:dc:4a:95:37:10:41:76:bf:00:24: 04:d3:05:b8:c8:99:5c:69:ec:b9:1d:ff:f6:07:b2: a3:c5:61:81:18:2c:8e:a7:63:6e:39:67:92:06:63: e2:af:aa:7c:e6:43:2b:9f:f7:8c:e2:84:93:85:96: 86:f2:90:34:34:ff:f5:e8:49:03:af:3c:9b:a4:60: 57:db:3f:01:09:95:d9:31:52:c6:0b:ad:26:c1:16: 16:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2F:FB:64:AC:50:1D:C0:AF:F2:30:8D:10:B8:01:A5:C7:9B:64:92 X509v3 Authority Key Identifier: keyid:15:F4:EF:04:F5:AF:23:96:C9:5F:16:42:E3:79:07:8B:48:8C:16:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/aaa76394-48fc-4ff3-b6aa-0693c55d758f/1b1fe67321cf669f9c2b75369cc0fdd38c163c58b1d42d0107.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/1711236a-8155-4c07-b817-a1102ef842d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/ff9fa84e-9783-4a0b-a58d-6dc8e2433d33/z2afnCt1NpzA_dOMFjxYsdQtAQc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.226.24.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:28:a5:a5:75:aa:c8:44:28:be:6a:25:a7:cf:4d:89:25:31: 68:36:1c:46:34:20:bb:27:45:9e:67:48:82:b9:0f:f5:62:a2: d3:a5:2b:ea:17:2a:6c:ca:3f:99:b6:93:56:95:d3:2b:7f:ee: f9:cf:34:3d:3b:0d:b8:3e:13:d4:67:21:01:bc:50:c2:e8:f5: 94:f3:63:96:92:0e:1a:2a:27:e9:9d:01:71:a1:6e:ab:fb:67: 49:61:be:a9:c2:d7:46:53:e7:26:b4:5a:55:f9:22:e6:cd:e9: 26:8d:cd:51:35:43:e3:4f:04:81:43:4e:c6:f3:75:5b:99:60: ed:2c:c5:c5:38:8a:90:9a:5f:39:76:46:68:08:e5:e2:79:8b: 44:ce:49:56:4f:e7:88:16:06:2c:31:aa:7d:a4:26:b7:70:08: 90:cf:c6:65:cc:88:f3:7f:21:a5:8d:52:37:d4:9a:20:29:da: b2:8f:7b:e1:e9:5c:7c:14:92:45:27:35:9b:84:d8:d3:96:c9: 96:74:ab:eb:5e:c1:80:59:9b:f8:81:2d:a8:d5:60:4d:d2:b8: ad:61:0e:75:44:6e:40:07:e0:79:b7:1c:cf:7b:d6:a8:5c:3f: de:1f:83:91:77:53:45:0a:1e:b2:ab:a7:cd:c7:95:55:e3:8e: 8f:d9:35:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM8HLvYpyj3kHm1S1HSdFV1vgMjkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMWIxZmU2NzMyMWNmNjY5ZjljMmI3NTM2OWNjMGZkZDM4 YzE2M2M1OGIxZDQyZDAxMDcwHhcNMjQwNDIyMDAwMDAwWhcNMjQwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWU5MGVlNmViMmRhOTA4ZTJjMGFlZTJhZTJiMWU4YTQy ZWI4NmNlZWM0OGM3NDI5MDg4MjE3NDYxZTlhMDhjMS0wKwYDVQQDEyQzNTA5NWUz ZS04NGNiLTRhZDAtYmRhMS02YzZmOGRhNjlmNjEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5dUI8fLEjQhwK+VUHBa3PUMVb1WvBHbJ9T5WuaOlLqMck Gj83QgLE65B4T1AUI+ZI0iHSdrxsw0jT2zyuFufpKv4Juy6TzalOhtZOcJVLqHpt PbMwlvYCe4xTPotamjoiuJZaCwvviGDG2F1lxux4AT/MVN4UbAax+tlUbd6XZ3D2 sjxgiBeet0pR8UtxWXF1akqvlnxtqNDN/Svw8Jlum9fFsfdTvUVD3EqVNxBBdr8A JATTBbjImVxp7Lkd//YHsqPFYYEYLI6nY245Z5IGY+KvqnzmQyuf94zihJOFloby kDQ0//XoSQOvPJukYFfbPwEJldkxUsYLrSbBFhZ7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHC/7ZKxQHcCv8jCNELgBpcebZJIwHwYDVR0jBBgwFoAUFfTvBPWvI5bJ XxZC43kHi0iMFgswDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzViN2ZiMTIyLWRmZGYtNGMwYy1iOTBkLTNiYzdhNWZlYjgyYi9hYWE3NjM5NC00 OGZjLTRmZjMtYjZhYS0wNjkzYzU1ZDc1OGYvMWIxZmU2NzMyMWNmNjY5ZjljMmI3 NTM2OWNjMGZkZDM4YzE2M2M1OGIxZDQyZDAxMDcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZmY5ZmE4NGUtOTc4My00YTBiLWE1OGQtNmRj OGUyNDMzZDMzLzE3MTEyMzZhLTgxNTUtNGMwNy1iODE3LWExMTAyZWY4NDJkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2ZmOWZhODRlLTk3ODMtNGEwYi1hNThk LTZkYzhlMjQzM2QzMy96MmFmbkN0MU5wekFfZE9NRmp4WXNkUXRBUWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAr4hgwDQYJKoZIhvcNAQELBQADggEBAB4opaV1qshEKL5qJafPTYklMWg2 HEY0ILsnRZ5nSIK5D/ViotOlK+oXKmzKP5m2k1aV0yt/7vnPND07Dbg+E9RnIQG8 UMLo9ZTzY5aSDhoqJ+mdAXGhbqv7Z0lhvqnC10ZT5ya0WlX5IubN6SaNzVE1Q+NP BIFDTsbzdVuZYO0sxcU4ipCaXzl2RmgI5eJ5i0TOSVZP54gWBiwxqn2kJrdwCJDP xmXMiPN/IaWNUjfUmiAp2rKPe+HpXHwUkkUnNZuE2NOWyZZ0q+tewYBZm/iBLajV YE3SuK1hDnVEbkAH4Hm3HM971qhcP94fg5F3U0UKHrKrp83HlVXjjo/ZNaU= -----END CERTIFICATE-----Generated at Thu May 2 01:06:36 2024 by rpki-client on console-fra.rpki-client.org